theY4Kman / parsuricata

Related projects: ⓘ

• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆25Updated 6 months ago
• theY4Kman / suricata-prettifier
  Command-line tool to format and syntax highlight Suricata rules
  ☆13Updated 4 years ago
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆19Updated last year
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆28Updated last month
• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated 3 years ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆66Updated 4 months ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 4 years ago
• Center-Sun / suricata-kafka-output
  provides a Suricata Eve output for Kafka with Suricate Eve plugin
  ☆14Updated 2 years ago
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆28Updated last year
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆26Updated 7 years ago
• faisalusuf / ThreatIntelligence
  Tracking APT IOCs
  ☆24Updated 3 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆32Updated this week
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆12Updated 7 months ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆18Updated 8 years ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆60Updated 4 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 2 months ago
• sethhall / domain-tld
  Zeek script library for getting the effective TLD of a domain.
  ☆13Updated 5 months ago
• regit / suri-stats
  A tools to work on suricata stats.log file.
  ☆27Updated 8 years ago
• secureworks / aristotle
  ☆34Updated last year
• osV22 / ATTACK-Force-Graph
  Generate JSON force-directed/ node graph data from MITRE's ATTACK framework and visualize it interactively
  ☆22Updated 3 years ago
• vulsio / go-cti
  Build a local copy of MITRE ATT&CK and CAPEC. Server mode for easy querying.
  ☆29Updated this week
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 3 years ago
• Benster900 / BlogProjects
  Various blog post projects.
  ☆10Updated 3 months ago
• bro / bro-osquery
  Bro integration with osquery
  ☆14Updated last year
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆61Updated this week
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆19Updated 3 weeks ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆29Updated 4 years ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆74Updated this week
• kojibhy / cuckoo-yara-auto
  ☆11Updated this week
• activeshadow / go-atomicredteam
  go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…
  ☆45Updated last year